CVE-2024-52361

CWE-2563 documents3 sources
Severity
5.7MEDIUM
EPSS
0.1%
top 83.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Storage Defender - Resiliency ServiceIBM Storage Defender Resiliency Service
Timeline
PublishedDec 18

Description

IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9 stores user credentials in plain text which can be read by an authenticated user with access to the pod.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.1 | Impact: 3.6

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-c7jc-3j2x-59x8: IBM Storage Defender - Resiliency Service 22024-12-18
CVEList
IBM Storage Defender - Resiliency Service information disclosure2024-12-18
CVE-2024-52361 (MEDIUM CVSS 5.7) | IBM Storage Defender - Resiliency S | cvebase.io